Contact Support

If you are an existing client to get support call us on:

+44 (0)1483 412 042

OR

Login to the portal

Support portal

If you've been given a 6-digit support code

click here

Not an existing customer?

Contact us

Video: Cyber Chat – Episode 12 – Top tips for better cybersecurity

Welcome to episode 12 of Cyber Chat. This week Rob May gives his 6 top tips for better cybersecurity, including; having a cyber response plan, regular staff training, Cyber Essentials accreditation and phishing tests.

Managing the ongoing cybersecurity of your IT infrastructure should be a primary concern – whatever the shape or size of your organisation. Cybersecurity breaches are the number one threat in today’s business landscape. Incidents come in many forms: cyber attacks; laptops left on trains; malicious staff; or, even more simply, accidental data loss caused by human error. The human firewall is vital as a line of defence for any organisation and in this video Rob, author of The Human Firewall (available on Amazon) explains what the Human Firewall is.

Find out more about ramsac’s cybersecurity services

 

 

Cyber Chat – Episode 12 – video transcript

Hi, I’m Rob May, I’m MD of ramsac and welcome to Cyber Chat. Today, I just want to leave you with my top 6 tips of things that you absolutely must be doing. You’ll know if you’ve come to one of my training sessions or one of my talks, there’s loads and loads of actions that we can all take to protect ourselves. But what are the top things?

Number 1 is you’ve got to train your staff, you’ve got to have cyber education. And not only have you got to do it. You’ve got to be able to prove that you’ve done it. So, keep records, if you’re using online training make sure you’re keeping the audit report and so on. You need to be able to prove to the ICO that your staff have had cyber education.

Number 2 is get or keep cyber on your board agenda. If you’re a Director, you need to be able to prove that the board is taking cyber seriously. Cyber is not an IT problem, cyber is a problem for the Board of Directors. So, get it on your agenda, get it in your minutes. So, that again when you have a breach and you have an inspection, you can prove that the business has taken this seriously.

Number 3 is make sure you’ve got a cyber response plan. It’s mandated by GDPR, you’re expected to have a cyber response plan. But do staff know where it is? Do staff understand it? And has it been tested, like any form of business continuity plan? Your cyber response plan needs to be checked and it needs to be tested, so make sure you do that.

Number 4 is, have your business penetration tested. So, a penetration test or a pen test is essentially where you’re paying a friendly hacker to try and hack into your system. And when you book your pen tests and that might be mandated if you’re a regulated business. You might already be regulated that you, sorry, you might already be mandated that you have to do a pen test. But when you have that I also recommend that you also do social penetration testing. And this is where the business will try and work people use social engineering, make phone calls, walk into reception and so on and try and trick people. Which a big part of cyber is about.

Number 5 is get Cyber Essentials accredited. Get that certification that shows the outside world that you take your clients data seriously. It’s very easy to do, talk to your relationship director at ramsac and they will take you through the process to get certified but make sure you do that.

And number 6 is, subscribe to phishing tests. So, we can very easily set up tests for you so that your staff receive phishing emails, that look like real phishing emails in the wild, but if clients actually click on them, then they get training and it gets pointed out that this was fake. The average business in the UK, when they first start this process, we expect 28% of employees to click on links in fake phishing emails. So, it really is a problem, but it’s a really easy one for you to address in terms of training.

So, there’s 6 top tips for you. I hope that’s useful. I look forward to speaking to you again soon. Thank you.

Registration No. 26980136
Terms and Conditions | Privacy Notice
Richard Renson
Richard Renson
16:54 10 Dec 18
Great, helpful IT Kings and Queens
Andrew Worth
Andrew Worth
12:37 30 Aug 18
fine bunch
Colin Warner
Colin Warner
08:46 06 Dec 17
Excellent managed service provider.
Selom B
Selom B
11:58 10 Dec 16
First Class!! Responsive, knowledgeable, professional and very easy to work with - Ramsac have been a fantastic strategic IT partner for the last few years and I'm sure will continue to be for many years going forward. I would highly recommend them!
Patrick O'Luanaigh
Patrick O'Luanaigh
10:55 01 Jul 16
A truly fantastic IT support company - I can't speak highly enough about them.
Sarah Whitemore
Sarah Whitemore
11:59 20 Jun 16
I have known Dan May and Ramsac for 5 or 6 years now. Dan is such a great guy and really helpful with strategic advice and input on all things IT. He's so approachable and doesn't baffle you with IT jargon. If you are looking to outsource your IT or you have a problem you need help with Dan is definitely the one to ask.
Jonathan Richards
Jonathan Richards
12:14 31 May 16
I've worked with Ramsac for many years and whole heartedly recommend their services. They are always professional, approachable and have the rare skill of making IT understandable. Their can do attitude leaves you feeling that you are in safe hands.
See All Reviews
© 2019 ramsac. All rights reserved.